Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/AK-tDM3Jj_DVxglhfVf0E-Tsmmw.roa
File: AK-tDM3Jj_DVxglhfVf0E-Tsmmw.roa (raw, json)
Hash identifier: iCzmuIorZbshiJG4irHmEoXIEW5AJ8Kf4OrAZQJKdFU=
Subject key identifier: 00:AF:AD:0C:CD:C9:8F:F0:D5:C6:09:61:7D:57:F4:13:E4:EC:9A:6C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EFA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/AK-tDM3Jj_DVxglhfVf0E-Tsmmw.roa
Signing time: Mon 10 Feb 2025 14:16:16 +0000
ROA not before: Mon 10 Feb 2025 14:16:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 203.68.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3834 (0xefa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=00AFAD0CCDC98FF0D5C609617D57F413E4EC9A6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:54:72:b9:52:c5:6d:b4:fd:42:07:63:7f:98:
3a:32:a7:30:a0:81:3e:6e:c3:be:b0:61:84:88:43:
0a:25:ec:1f:d7:2b:47:ba:f8:4e:65:e4:b0:7a:cb:
8f:91:b6:f9:e2:a5:db:82:d7:6c:4a:c9:59:03:ec:
5a:51:35:6e:8c:21:06:6e:f6:1c:c1:54:0e:b9:02:
61:c3:b0:69:26:b0:cb:31:42:88:ea:4e:2c:e0:ab:
13:77:c1:92:96:cb:ad:b2:fb:19:4a:77:2c:23:10:
91:d0:5c:4c:6c:48:0b:39:e7:57:df:48:8a:e0:16:
e4:51:fd:61:c4:18:be:35:7f:f1:83:3b:f3:77:12:
23:83:93:09:c7:33:80:49:76:bf:33:27:6d:35:4c:
6c:91:f0:c3:d4:67:4b:51:b2:5a:8e:05:61:cb:07:
28:ff:6b:89:d4:ed:ae:7f:7f:01:a5:20:88:07:c5:
5b:cc:98:40:d5:65:23:48:de:b5:5f:14:ad:44:31:
c1:1d:b6:74:c9:b7:87:0d:c6:81:89:ba:01:42:a9:
86:bf:53:23:6f:b4:1e:e7:81:e3:50:df:6c:a3:c5:
f0:de:14:81:97:48:8d:73:34:96:b8:8f:8d:4d:0a:
7e:c5:db:a2:74:2a:2f:00:c3:3e:9c:43:f1:7c:3e:
de:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AF:AD:0C:CD:C9:8F:F0:D5:C6:09:61:7D:57:F4:13:E4:EC:9A:6C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/AK-tDM3Jj_DVxglhfVf0E-Tsmmw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.203.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e8:86:45:8b:42:73:30:13:9a:24:f9:0c:52:ef:49:9b:31:
40:5c:4c:07:85:c7:38:10:47:ed:e1:5c:1e:d4:58:7d:9b:03:
40:3e:6d:fc:b8:ef:65:5b:6b:d4:8f:2f:08:73:c5:5e:97:ca:
34:e9:b1:c1:7d:0c:22:14:4c:d6:7a:78:0f:55:83:88:d1:3f:
b4:06:1b:bd:e8:c9:be:1b:d5:a5:ad:3e:a3:ad:e8:e3:13:56:
b4:4e:f7:c3:93:2a:25:c3:ef:10:7a:f0:73:2c:18:9d:03:21:
e6:79:cc:e5:32:67:94:61:72:58:1b:f6:4a:b1:c7:4d:f8:56:
91:69:77:75:57:b4:11:35:31:2d:cc:45:1b:2b:de:1f:92:bc:
98:ba:bb:d0:f8:10:75:72:02:f1:af:d4:9d:fd:96:b6:f4:7e:
9f:c7:d9:02:93:ef:27:07:a7:5b:6a:76:2b:ff:e9:34:86:d4:
fd:5d:42:5f:3a:e7:be:b6:35:28:bd:a8:38:c6:60:55:32:25:
9a:fa:9b:8d:2e:2c:81:22:da:6a:7d:cc:e7:e2:6f:07:18:21:
14:e3:56:dc:b7:27:67:58:0d:17:99:d0:a9:46:81:1a:7f:f3:
ee:04:ff:d1:31:b7:ef:14:e1:2e:79:d8:85:65:11:62:43:b4:
01:49:f3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:50:42 2025 by rpki-client